Video Screencast Help
Search Video Help Close Back
to help

Security Community Blog

Showing posts in English
PGP WDE Reporting w/ usable dates
Jonathan Brain | 25 Feb 2013 | 0 comments

If someone knows an easier way to accomplish this, feel free to post and make my life even easier.

The "Export WDE Activity" report from the Universal Server is useful if you need to do things like measuring compliance.  Unfortunately none of the date fields that are exported in the CSV are sortable by MS Excel.  It has been reported that this will be corrected in a future release.  Until that time I needed to come up with a way to use the dates that were there.  I have been trying to use this report to measure compliance within our environment.  Since our client base has grown so has the data within the export and without any purging, finding the right data is challenging. This is what I have come up with to extract usable dates from the Universal Server export.

  1. Export the WDE Event data from the Universal Server & open it
  2. Create a new tab called "Month"
  3. Input the following information on...
Read more
Nieuwe EU-richtlijn verplicht bedrijven om te rapporteren over cyberbeveiligingskwesties
Tim Van Honsté | 22 Feb 2013 | 0 comments

Op 7 februari stelde de Europese Commissie een nieuwe richtlijn voor inzake cyberbeveiliging. Het wil een Computer Emergency Response Team per lidstaat en een gezamenlijke instelling die cybermisdaad slimmer moet bestrijden. Het voorstel legt bedrijven ook op om overheden in te lichten bij datalekken of significante beveiligingsincidenten. Tot nu toe was dit beperkt tot bepaalde sectoren en varieerde de verplichting van land tot land.

Men kan het belang van dit voorstel niet genoeg benadrukken. Organisaties hebben nog al te vaak iets van ‘dat overkomt mij niet’. Of de IT-directeur wil wel er iets aan doen, maar krijgt het budget voor beveiliging niet verkocht bij zijn directie. Alleen al een security upgrade uitstellen, is om problemen vragen. De cyberwereld is onveilig, punt. De Botnets hebben na amper een kwartier een nagelnieuwe, onbeveiligde pc geïnfecteerd. Toch wordt IT...

Read more
Excel cells break when a report is exported to CSV format
Chaitali | 20 Feb 2013 | 0 comments

Issue: When a result of a Collection Evaluation Report job is exported in CSV format, the cells break - giving a non-uniform report output.

 

Cause: When the evidence of the failed checks is large, Microsoft Excel cannot handle the large character count of an individual cell. This causes the cells to break.

 

Explaination: The capacity of Microsoft excel to handle the length of cell contents is 32,767 characters. The first 1,024 characters display in a cell and the remaining appear in the formula bar. If the character count of the evidence in a cell is more than 32,767 characters, the cell will break. This is a limitation of Microsoft Excel.

Solutions:

Solution 1:

Instead of exporting the report in CSV format, export the result to excel by the following method:

Go to the Evaluation Result >> Select "Asset Based View" >> Highlight and select the...

Read more
How to report on agent based Unix Server hosting multiple databases
Chaitali | 20 Feb 2013 | 0 comments

How to report on an agent based Unix Server hosting multiple databases

Desired reports:

- Reports from the Unix Host

- Reports from DB1, DB2, DB3

Refer to the diagram below:

Solution:

To report on the Unix Host:

Install the Unix agent on Unix Host.

- Register Interface 1 with BVIS using command:

  • /setup.sh -a <IP of BVIS> <IP of Interface 1> <Username> <Password> -s UNX

 

To report on DB1, DB2, DB3:

- Register Interface 2 with BVIS using the -lip (logical IP) commands:

  • /setup.sh -a <IP of BVIS> <IP of Interface 1> <Username> <Password> -s UNX -lip <IP of Interface 2>...
Read more
Determine why a Scheduled Task or Query failed
Chaitali | 19 Feb 2013 | 0 comments

How to determine the cause of Scheduled Task or Query failure

Solution:

The cause of failed schedules can be determined from the Schedule Logs.

The logs for the RMS schedules are stored in text format at the following location: 

\Program Files (x86)\Symantec\RMS\data\<User Name>\ScheduleLogs

Note:

The name of each log file corrosponds to the name of the schedule in RMS.

These log files are automatically overwritten by the new log files after the respective schedule re-runs.

At any given point in time, one schedule in RMS has a corresponding one schedule log file from its latest run.

 

Read more
Successful Security Program- A Top Down Approach
AR Sharma | 19 Feb 2013 | 1 comment

Security in IT doesn't come for free. It always involves cost in terms of following in addition to applicance and/or license cost:

1. System performance

2. User awareness

Every type of IT security, whether it is antivirus scan, hard disk enryption or data loss prevention agent, finally ends up in consuming processing power of computer. Neither does it add any money-wise value to the business. Security program is seen as a cost center to the business.

Many times system performance hampers serious business processing leading to some or other type of loss, which is obviously not acceptable to senior management. Therefore, all initiative of security should be taken at higer management level, then only, there are high chances of security program getting successful. Chief Information Security Officer (CISO) plays a very important and vital role in explaining the dynamically changing threat landscape and the need of security program and the cost involved in...

Read more
Best Practises for Firewall Policy
Sumit G | 21 Feb 2013 | 0 comments

 

Hi Friends,

In this blog i have added some Articles which can help to guide about firewall policy.

Symantec Endpoint Protection Manager - Firewall - Policies explained

 

Article:TECH104433

 | 

Created: 2008-01-20

 | 

Updated: 2010-11-30

 | 

Article URL http://www.symantec.com/docs/TECH104433

How a firewall works

 

Article:HOWTO55054

 | 

Created: 2011-06-29

 | 

...

Read more
latest virus attacks and its imapact
K S Sharma | 17 Feb 2013 | 1 comment

Dear All,

As day by day security threat are increasing  and u need to more proactive approach to find latest details and make security tighten. As hackers group are continously working to break out security measures but at the same time organization spending lots of resource and money to make bussiness smooth and secure.

I think this is not just spending the money on IT security and having securty experts. makes u secure by implementing the security solutions. It is equally important to you how intellegently and smartly you take care each sides of security threats and configure it accordingly.

Please also read below threads for getting updates on some recent security threats

 

  • Shamoon virus targets energy sector infrastructure

            ...

Read more
The Windy City Breezes Through Another Successful Cyber Readiness Challenge
Pamela Reese | 11 Feb 2013 | 0 comments

On February 5, 2013, Symantec hosted another Cyber Readiness Challenge event; the series promotes discussions surrounding the evolving cyberthreat landscape with an end goal of helping organizations mitigate risk and maintain their security posture. Symantec previously hosted games in Toronto, Irvine, California and Dallas. Last week, we brought the challenge to the windy city of Chicago where more than 60 participants gathered at the University of Illinois at Chicago (UIC) campus to engage in an evening of friendly competition. In fact, the setting proved to be an ideal meeting spot, enabling both security research...

Read more
Best Practices and Troubleshooting for Group Update Providers
Sumit G | 12 Feb 2013 | 0 comments

Here are the Best Practices and Troubleshooting articles which are related to GUP.

Group Update Provider: Sizing and Scaling Guidelines

http://www.symantec.com/business/support/index?page=content&id=TECH95353

Best Practices with Symantec Endpoint Protection (SEP) Group Update Providers (GUP)

http://www.symantec.com/business/support/index?page=content&id=TECH93813

Configuring the Group Update Provider (GUP) in Symantec Endpoint Protection 11.0 RU5

http://www.symantec.com/business/support/index?page=...

Read more